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“The trouble with programmers is that 
you can never tell what a programmer 
is doing until it’s too late.” 
— Seymour Cray © 2020 Philip Koopman 1 
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3 Security Migitation & Validation mele 


= Anti-Patterns for security mitigation & validation 
Poorly considered password policy 

Poorly considered privilege management 
Assuming firewall or air gap is perfect security 
No implementing secure update + secure boot 
Just relying on penetration testing 





= Mitigation best practices 
e Keep up to date with good security practices 
e Secure update + secure boot 
e Penetration testing is only a starting point 
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= Typical failure scenarios 
e Same password used by everyone 
e Weak passwords (“1234”) 
e Strong password policy > post-it note work-around 
= Possible solutions 
e Different password per person with reasonable strength 
e Two-factor authentication (e.g., RFID transponder) 
m= Balance between usability & security 
e Can you memorize: 7R#Ve9j3e@ahi7gjHr(*\pW4!X? 
e 2017 NIST guidelines (https://pages.nist.gov/800-63-3/) 
- Good ideas: long size, hash/salt/stretch for storage 


— Avoid: words in dictionary, requiring weird characters, password hints, timed expiry 


— Avoid SMS for 2fa (!) due to phone number hijacking (at least in some countries) 
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= Dont store them as plain text! 
e Dont just encrypt them either 
m= Hash: 
e Store a digest of password 
e But, dictionary attacks are a problem 
e Rainbow table: precomputed hashes 
= Salting & pepper: 
e Salt: random extra text 
e Pepper: systematic extra text 
e Can be secret or public (tradeoffs) 
m Generically, key stretching: 
e E.g., PBKDF2 stretching 
e Use up to date techniques! 





HACKERS RECENTLY LEAKED /&3 MILLION ADOBE. USER 
EMAILS, ENCRYPTED PASSWORDS, PND PASSWORD HINTS. 


ADOBE ENCRYPTED THE PASSWORDS IMPROPERLY, MISUSING 
BLOCK-MODE 3DES. THE RESULT IS SOMETHING WONDERFUL: 


USER PASSWORD HINT 
YelBacclab272d6 

YelBacclab27a2d6 

YelBacclab2%2d6 oa287beblealfca NAMEL 
Bbalbbb)?7e06eb6d DUH 
BbabbbIIe06eb6d a0a287bebleal fea 


BbabbblMe06er6d BSeIdaBlaBa/Bade OF 

Yel Bacclab2/2d6 FAVORITE OF IZ APOSTLES 

lab2%acPedabe5ca Ta2deada287beble WITH YOUR OWN HAND YOU 
HAVE. DONE ALL THIS 


afFA2bb2%%e%2b endecletar7#7377 SEXY EARLOBES 
BEST TOS EPISODE. 
SUGARLAND 
NAME + JERSEY # 
ALPHA 


OBVIOUS 
MICHAEL JACKSON 
BalcIMcadeo44 Fdcold7Id4decbdS 
3BalcI74eadeb44 Feald?ididechdS HE DID THE MASH, HE DID THE 
BoTc2Meodeb4Y — PURLOINED a 
THE GREATEST CROSSWORD PUZZLE 9013 
IN THE HISTORY OF THE WORLD 


PERMANENT LINK TO THIS COMIC: HTTPS://xKCD.com/1286/ 4 


Carnegie 


Principle: Least Privilege ae 


University 





m Each user & task should only have as much capability as it needs 
e Commonly, “user, “administrator, “factory” 
e Better: per-user fine-gain bit map of function permission 
e Related: helpful to log who did what (forensics) 


ym at 


= Common mistakes 





e Make a common task high privilege ANN 

— Everyone used to log in as admin for Windows a — 
e Give everyone the same password = 

— Once someone has admin, cant roll them back (\ 
e Make risky operations too easy (no confirmation) NAN 


m In general, think through permissions 


e Customers may push back, but this is important 
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What Happens With Unsigned Updates 


HACKERS REMOTELY AILL A JEEP ON THE ae : 
HICHWAY_WITHME IV 17 = Infotainment-to-CAN Firewall 
CPU non-secured update 


Hackers Remotely Kill a Jeep on the Highway—With Me in It 





| rh e Attackers reflashed firewall to 


~~ 


access CAN 








| was orivinc 70 mphon the edge of downtown St. Louis 


SH ARE when the exploit began to take hold. LATE eT NEWS 


Though I hadn’t touched the dashboard, the vents in the Jeep 








2 | eeend Cherokee started blasting cold air at the maximum setting, pesessions 
chilling the sweat on my back through the in-seat climate ¢ fickedly Cool s 
control system. Next the radio switched to the local hip hop fog «=«- Personalized to Your.. 


= station and began blaring Skee-lo at full volume. I spun the 
control knob left and hit the power button, to no avail. Then 
the windshield wipers turned on, and wiper fluid blurred the 
glass. 


at 





Sta atts af 7 ae, a 
As I tried to cope with all this, a picture of the two hackers : 
eae ape oNer BRANDED CONTENT eae 





performing these stunts appeared on the car’s digital 
ea Charlie Miller and Chris Valasek, wearing their 
rademark track suits. A nice touch, I thought. 


r%20Hacking.pdf 
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http://www. wired.com/2015/ sila ieiaaie kill eep-highway/ 
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= You'll need to deploy security patches | em | 
e Your code might have a vulnerability > | 
e 3rd party code (library, OS, communications) — i, 
might be vulnerable 
m= Secure update good practices: AUeaTy 
e Bootloader that does updates 
— First stage: integrity check for 2" stage; can’t be changed(!) 
— Second stage: knows how to load application image 
e Bootloader checks image public key signature 
— Public key hard-coded into bootloader 
— Only properly signed images are loaded 
- Consider limited date ranges (key revocation is hard) 


» E.g., pre-deploy public key every 3 months for 20 years 


= (C ons i d er h ar d -CO d ; n g re p os ito ry | Pp 2 d d resses https://www.allegrosoft.com/wp-content/uploads/Secure-Firmware-Updates-Paper.pdf 
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Example Mitigation: Secure Boot Ne ay 


= If your firmware is compromised, you are insecure 
e Need a way to make sure you only run factory-authorized code 
e Use public key signature to check firmware image integrity 
— Note: symmetric hash exposes signing key to attack 





Step 2: Generate Hash 











Executable Executable Executable . < | | 


One-way 






































= ai 
Executable 3 — Hast hash 
aa E Cerifiai ten ses 
One-way a: = . Compare 
7 * or ail | . ‘ v 
Hash hash [Certificate Sioned Code Signed Code sais e | 
el Code signer’s igned Code Inspect ra 
algorithm Pe eenagalee Certificate 5 One-way 
: } hash 
public key 
Step 3: 
Apply public key 


Figure 24. Code- and Document-Signing Process 
Figure 25. Code- and Document-Signing Verification Process 


https://www.faa.gov/aircraft/air_cert/design_approvals/air_software/media/AR-08-3 1 .pdf © 2020 Philip Koopman 8 
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m= Misconception: “Encryption Equals Security” 
e Encryption provides secrecy — but you might need integrity! 
e Encryption invokes export controls 
e What are the actual security requirements? 
= Example for firmware distribution 
e Symmetric key encryption of firmware is a bad idea 
— Key recovery permits adversary to sign malicious images 
e Public key encryption of firmware addresses secrecy 
— Reverse engineering will recover firmware image and/or decrypt key 
— But strong crypto secrecy tends to invoke export controls! 
e Secure signature (Public Key Digest) works well 
— A digest is a small hash of the entire message (like a checksum, but crypto-secure) 
— Sign image off-line one time; all devices can use public key to validate 
— Use per-download encryption as defense in depth © 2020 Philip Koopman 9 
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Penetration Testing Lijar aly 


“Pen test” — attempt to attack system to look for problems 





= Automated vulnerability testing 

e Test known security exploits to see if they succeed 

e Test for bug fixes for known non-exploited bugs 

e Port scanning for dangerous open 

(unnecessary) Ethernet ports 

= Penetration analysis 

e Hirea red team’ to attempt to penetrate system 

e Fuzz testing — send random inputs; see what breaks 
m Looks for likely-to-be-exploited vulnerabilities 

e Does not guarantee perfect security 
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A CRYPTO NERDS WHAT WOULD 
IMAGINATION + ACTUALLY HAPPEN: 


HIS LAPTOP'S ENCRYPTED. HIS LAPTOP'S ENCRYPTED. 
LETS BUILD A MILLION-DOLLAR DRUG HIM AND HIT HIM WITH 


CLUSTER To CRACK IT. THIS $5 WRENCH UNTIL 





4096 -BIT RSA! 
BLPST! OUR } 
EVIL PLAN 
\S FOILED! ™ 








Ge Bits Glos Es Ee 


PERMANENT LINK TO THIS Comic: HTTPS://xkKCcD.com/538/ © 2020 Philip Koopman 11 
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m= Static & dynamic code analysis 
e General code quality tools: Coverity, PC-Lint 
e Security-specific security tools 
— Look for violations of checkable secure coding rules 


— Various tools for thread safety, bounds checking, ... 
e Potential problem: 


—- False positives (many warnings are not / —_ 


actual vulnerabilities) 





m Peer review 
e Security-oriented review of source code 
e E.g., Cert C 98 Coding Standard 


— http://www.open-std.org/jtc1/sc22/wg14/www/docs/n1255.pdf 
- E.g., use strcpy_s() instead of strcepy() 
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= Intrusion detection 
e Detect abnormal patterns of system operation 


e False positives are expensive; | a ™ 
no such system is perfect a Saree 
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= Monitor Black Hat sites 
e Look for published exploits against your product 





= Honey pot systems 
e Deploy a monitored decoy system and look for successful attacks 


=m Bug bounties 
e Pay anyone who finds an exploit so you can fix it 
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Security Mitigation & Validation University 


i Good practices: 
e Encourage strong but usable passwords 
e Use fine-grain permissions 
e Be careful storing password information 
e Respect limitations of firewall approaches 
e Use secure update and secure boot 
e Use more than just penetration testing 








= Pitfalls: 
e Thinking security is easy 
e Using intuition instead of doing your homework 
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HI, THIS IS OH, DEAR - DID HE +| DID YOU REALLY WELL WE'VE LOST THIS 
YOUR SON'S SCHOOL.| BREAK SOMETHING? | NAME YOUR SON YEAR'S STUDENT RECORDS. 
WERE HAVING SOME IN A WAY ) Robert'}; DROP T HOPE YOURE HAPPY. 


COMPUTER TROUBLE. TABLE Stulents;-~ 7 


\, 






~ OH, YES. LITTLE 
ROBBY TABLES, 
WE CALL HIM. 





https://xkcd.com/327/ 
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